CVE-2025-6695 – LabRedesCefetRJ WeGIA Cross-Site Scripting Vulnerability

June 26, 2025

CVE ID : CVE-2025-6695

Published : June 26, 2025, 2:15 p.m. | 49 minutes ago

Description : A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This issue affects some unknown processing of the file /html/matPat/adicionar_categoria.php of the component Additional Categoria. The manipulation of the argument Insira a nova categoria leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6674 – Drupal CKEditor5 Youtube Cross-Site Scripting (XSS)

Next Article CVE-2025-5682 – Drupal Klaro Cookie & Consent Management Cross-Site Scripting (XSS)

Highlights

Splunk Address Third Party Packages Vulnerabilities in Enterprise Versions – Update Now

July 10, 2025

Splunk Address Third Party Packages Vulnerabilities in Enterprise Versions – Update Now

Splunk has released critical security updates addressing multiple Common Vulnerabilities and Exposures (CVEs) in third-party packages across Enterprise versions 9.4.3, 9.3.5, 9.2.7, 9.1.10, and higher …
Read more

Published Date:
Jul 09, 2025 (16 hours, 46 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-48818

CVE-2025-23389

CVE-2025-23388

CVE-2025-23387

CVE-2025-22870

CVE-2025-27414

CVE-2025-22952

CVE-2025-22869

CVE-2025-22868

CVE-2025-0725

CVE-2025-0167

CVE-2024-13176

CVE-2024-45338

CVE-2024-45337

CVE-2024-11053

CVE-2024-9681

CVE-2024-9143

CVE-2024-8096

CVE-2024-7264

CVE-2024-6345

CVE-2024-2466

CVE-2024-2398

CVE-2024-0853

CVE-2022-30187

CVE-2013-7489

Servas is a self-hosted bookmark management tool

May 17, 2025

Do I need to worry about state-sponsored threats like Regin?

April 9, 2025

Gears of War returns, Helldivers 2 jumps ship, and Xbox players win big — Xbox’s Aug 25–31 lineup proves the console war is getting interesting again

August 25, 2025

Coded Smorgasbord: High Strung

Chainguard launches trusted collection of verified JavaScript libraries

CData launches Connect AI to provide agents access to enterprise data sources

PostgreSQL 18 adds asynchronous I/O to improve performance

Distribution Release: Neptune 9.0

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

PHP 8.5.0 RC 1 available for testing

PHP 8.5.0 RC 1 available for testing

Terraform Code Generator Using Ollama and CodeGemma

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Distribution Release: Neptune 9.0

Distribution Release: Neptune 9.0

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

CVE-2025-6695 – LabRedesCefetRJ WeGIA Cross-Site Scripting Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2025-43962 – LibRaw Out-of-Bounds Read Vulnerability

Sick of AI slop on Pinterest? These two new features should help bring back real pins

CVE-2025-44879 – WS-WN572HP3 CGI Upload Buffer Overflow DoS

Windows has a secret recovery tool – here’s how to find it and use it

Splunk Address Third Party Packages Vulnerabilities in Enterprise Versions – Update Now

Servas is a self-hosted bookmark management tool

Do I need to worry about state-sponsored threats like Regin?

Gears of War returns, Helldivers 2 jumps ship, and Xbox players win big — Xbox’s Aug 25–31 lineup proves the console war is getting interesting again

CVE-2025-6695 – LabRedesCefetRJ WeGIA Cross-Site Scripting Vulnerability

Related Posts